Mageia 2018-0444: libtiff security update
Summary
An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer
dereference in the function LZWDecode in the file tif_lzw.c.
(CVE-2018-18661)
References
- https://bugs.mageia.org/show_bug.cgi?id=23788
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661
Resolution
MGASA-2018-0444 - Updated libtiff packages fix security vulnerability
SRPMS
- 6/core/libtiff-4.0.9-1.8.mga6